Security Advisory - Improper Buffer Operation Restrictions Vulnerability on Huawei Smartphone

There is a vulnerability of improper buffer operation in Huawei smartphone. Due to improper restrictions, local attackers with high privileges can exploit the vulnerability to cause system heap overflow. Vulnerability ID: HWPSIRT-2020-08183 This vulnerability has been assigned a Common...

Oracle Linux 8 : kernel (ELSA-2020-4685)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-4685 advisory. - net Bluetooth: fix kernel oops in storependingadvreport Gopal Tiwari 1888454 1888455 CVE-2020-24490 - net Bluetooth: L2CAP: Fix calling skfilter on...

CVE-2020-12317

Improper buffer restriction in some IntelR PROSet/Wireless WiFi products before version 21.110 may allow an unauthenticated user to potentially enable denial of service via adjacent access...

CVE-2020-0591

CVE-2020-0591 concerns improper buffer restrictions in BIOS firmware for certain Intel processors, enabling potential local privilege escalation. Documented impact is escalation of privilege via local access; exploitation status is not detailed in the provided sources. Affected are Intel BIOS fir...

Dell Inspiron Buffer Overflow Vulnerability

The Dell Inspiron 15 7579 2-in-1 Dell Inspiron is a laptop computer from Dell USA. A security vulnerability exists in the Dell Inspiron 15 7579 2-in-1 BIOS prior to version 1.31.0, which stems from the inclusion of an improper SMM communication buffer validation vulnerability. A locally...

The vulnerability of the XFS file system implementation in Linux operating systems allows a attacker to trigger a service failure.

The vulnerability of the XFS file system implementation in Linux operating systems is related to an improper limitation on buffers for downloaded data. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2020-8758

CVE-2020-8758 affects Intel AMT/ISM: improper buffer restrictions in the network subsystem may allow escalation of privilege. In provisioned systems, an unauthenticated attacker on the network can potentially escalate privileges; on un-provisioned systems, an authenticated user may escalate via l...

CVE-2020-8733

Improper buffer restrictions in the firmware for IntelR Server Board M10JNP2SB before version 7.210 may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2020-8689

Improper buffer restrictions in the IntelR Wireless for Open Source before version 1.5 may allow an unauthenticated user to potentially enable denial of service via adjacent access...

2020.1 IPU – Intel® CSME, SPS, TXE, AMT, ISM and DAL Advisory

Summary: Potential security vulnerabilities in Intel® Converged Security and Manageability Engine CSME, Intel® Server Platform Services SPS, Intel® Trusted Execution Engine TXE, Intel® Active Management Technology AMT, Intel® Standard Manageability ISM and Intel® Dynamic Application Loader DAL ma...

Design/Logic Flaw

Improper buffer restrictions in subsystem for IntelR CSME versions before 12.0.64, 13.0.32, 14.0.33 and 14.5.12 may allow an authenticated user to potentially enable escalation of privilege, information disclosure or denial of service via local access...

CVE-2020-0558

Improper buffer restrictions in kernel mode driver for IntelR PROSet/Wireless WiFi products before version 21.70 on Windows 10 may allow an unprivileged user to potentially enable denial of service via adjacent access...

Buffer overflow

Improper buffer restrictions in firmware for some IntelR NUC may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2019-2269

Possible buffer overflow while processing the high level lim process action frame due to improper buffer length validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9150, MDM9650, MSM8996AU, QCS405...

CVE-2019-2269

Possible buffer overflow while processing the high level lim process action frame due to improper buffer length validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9150, MDM9650, MSM8996AU, QCS405...

CVE-2018-11923

Improper buffer length check before copying can lead to integer overflow and then a buffer overflow in WMA event handler in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU,...

CVE-2018-11924

Improper buffer length validation in WLAN function can lead to a potential integer oveflow issue in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9150, MDM920...

Quagga bgpd is affected by multiple vulnerabilities

Overview The Quagga BGP daemon bgpd prior to version 1.2.3 may be vulnerable to multiple issues that may result in denial of service, information disclosure, or remote code execution. Description CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer - CVE-2018-5378...

The vulnerability of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Windows operating system arises from incorrect checking of buffer size. Exploiting this vulnerability can allow an attacker, operating locally, to increase their privileges...